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Grand  Hypotheses; 

•  Layered  Defense 

•  Dynamic  Defense 

•  Assurance  Methodology 

•  Automated  Response 

•  Automated  Decision  Support 


Types  of  Experiments: 

•  Field  Experiments 

•  Red  Team  Lab  Exercise 

•  Laboratory  Experiments 

•  Interdisciplinary  White-Boarding 

•  Component  Specific  Testing 


-n 


Contact 


r£=cr 


Autonomic  Information  Assurance .  Brian  Witten 

Dynamic  response  b witten  @  darpa.mil 

Cyber  Command  &  Control .  Catherine  McCollum 

Human  directed  strategy  cmccollum@darpa.mil 

Dynamic  Coalitions . .  Doug  Maughan 

Coalition  policy  mechanisms  dmaughan@darpa.mil 

Fault  Tolerant  Networks .  Doug  Maughan 

Tolerant  mechanisms  dmaughan@darpa.mil 

lA  Science  &  Engineering  Tools .  Michael  Skroch 

Design  tools  &  models  mskroch@darpa.mil 

Information  Assurance .  Michael  Skroch 

Composable  trust  mskroch@darpa.mil 

Intrusion  Tolerant  Systems .  Jay  Lala 

Tolerant  systems  jlala@darpa.mil 

Strategic  Intrusion  Assessment .  Catherine  McCollum 

Attack  recognition  &  correlation  cmccollum@darpa.mil 


Cyber  Sensor  Grid .  Catherine  McCollum 

Malicious  Code  Mitigation .  Michael  Skroch 

Reliable  Mobile  Agents .  Brian  Witten 

Secure  Operating  Systems .  Doug  Maughan 

Security  of  High  Speed  Networks . Doug  Maughan 
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Process  ID 
0x1b7  =  439 
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Stat  foo 


%  Is  -1 

header.79^fQrk(2)..Sun  Oct  03  21 :57:43  1 999,  +  51 0000000  msec 
argument, Q^xl  b^hild  PID 

subject,aheberie7aheberle, staff, aheberle, staff, 408, 407, 24  6  ban 
return, success, 0 

headeiJiiZ,£*^ecve(2),,Sun  Oct  03  21 :57:43  1999,  +  510000000  msec 
path(^sr/bin/l^ 

attributeTTCrnSSs, bin, bin, 26738688, 427674,0 
subject,aheberle,aheberle, staff, aheberle,staf, ,439. 407,24  6  ban 
return, success, 0 

• 


boa^r  121  2  l.gtatfPI  Pliin  21 :57:43  1 999,  +  51 0000000  msec 

patldexport/bome/abeberle/foQ^ 
attribuTe,iuuuuu,aneDerie,STaTT^6738688, 139738,0 
subject,abeberle,abeberle, staff, abeberle, staff, 439, 407, 24  6  ban 
return, success, 0 
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theories  for  malicious  code  proof-carrying  code 

tolerant  architectures  theory  of  response 

bilateral  trustworthy  path 
static  &  adaptive  fault  tolerance 


Complicating  factors: 

•  More  COTS 

•  Increasing  use  and  reliance  on  systems 

•  Increasing  connectivity 


Strategy: 

•  Detect  &  Expunge  “On  the  Fly” 

•  New  Architectural  Concepts 

•  Address  Policy  Language  Lag 
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Hew  FOCUS:  BeUaUe  MoUle  Agents 

Mobile  Agents  are: 

Programs  that  can  migrate  from  machine 
to  machine  under  their  own  controi. 


Code  mobility... 

Functionally  enhances:  Presents  Survivability  Opportunities: 


1 .  Efficiency 


smail  program 
data  biock 


Large 
database 


2.  Disconnected  operations 

(e.g..  wireless  networks) 


3.  Flexibiiity 

Install  new  functionality 


1. 


Availability 

No  central  failure  point. 


2.  Integrity 

Fluidly  reinforce  execution  traces. 


3.  Confidentiality  ^ 

Code  fragmentation. 
Mobile  cryptography, 
(a+b) - ► 
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Coaeiusioas: 

•  National  Level  Problem 

•  DARPA  “high-risk”/ 
“high-reward”  focus 


Hew  Focus  Jlreas: 

•  Cyber  Sensor  Grid 

•  Malicious  Code  Mitigation 
Reliable  Mobile  Agents 
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Proven  Success: 

•  ARPANET 

•  Firewall  Toolkit 

WaiUnuGolU: 

•  Secure  Domain  Name  Service 

•  Internet  Protocol  Security  (IPSEC) 

•  Secure  Border  GaXevi&y  Protocol 

•  Next  Generation  Intrusion  Detection 

More  to  Come: 

•  Denying  Denial-of-Service 

•  Self-Healing  Systems 

•  Proof  Carrying  Code 

•  Trace  Back 

•  Dynamic  Defense 

•  Metrics  &  Science  Based  Design 


lA&S  Information  -  www.darpa.mil 


